• Home
  • OPNsense vs. Sangfor NGAF

OPNsense vs Sangfor NGAF comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo

Fortinet FortiGate

Read 306 Fortinet FortiGate reviews
123,063 views|89,961 comparisons
90% willing to recommend
OPNsense Logo

OPNsense

Read 36 OPNsense reviews
108,675 views|95,621 comparisons
96% willing to recommend
Sangfor Logo

Sangfor NGAF

Read 31 Sangfor NGAF reviews
6,362 views|3,503 comparisons
88% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
OPNsense vs. Sangfor NGAF
March 2024
Executive Summary

We performed a comparison between OPNsense and Sangfor NGAF based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed OPNsense vs. Sangfor NGAF Report (Updated: March 2024).
Download the complete report
768,740 professionals have used our research since 2012.
Featured Review
Viraj Fernandopulle
Includes built-in APIs, is easy to deploy, and provides good insight into our network
FortiGate offers visibility into the types, brands, versions, and users of connected devices. This visibility is crucial for our industrial... Read more →
Samo Primožič
Easy to manage, free and good for small offices
It helps to improve network security. It does its job.
DilawerAli
Stable performance and valuable features include VPN connectivity, SSL VPN, and URL filtering
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"We are using the FortiGate 100D series. VPN, firewall, anti-malware, OTM, and intrusion prevention are useful features.""The multi-tenancy feature is most valuable. It integrates very well with FortiManager and FortiAnalyzer.""The signature database and zero-day detection are Fortinet FortiGate's most valuable features.""I like Fortinet FortiGate's antispam filter, SPN, and clustering features.""The most valuable feature is the web filter.""The main reason why I purchased the particular unit was that it had good reviews and what other people were saying as far as its completeness and its leading capabilities in terms of endpoint security was very good.""The features that prevent internet connections, the filtering are the most valuable because we did not have any internet protection before.""Initial setup is straightforward. There weren't too many issues with setting it up. It takes one hour or so."

More Fortinet FortiGate Pros →

"OPNsense could improve by making the configuration more web-based rather than shell or command-line-based.""I feel that its valuable features are that it is simple and free.""The most valuable features in OPNsense are reporting and visibility.""OPNsense is easy to use and open source.""URL blocking, Wireguard, Tail Scale, Engine Blocker, and VPN are the most valuable features for me.""The initial setup is easy. It only takes 15-30 minutes to deploy.""What I like the most about OPNsense is that it offers an easy-to-use dashboard for device management and control.""I find the solution to be user-friendly. It has a lot of reports and easy settings."

More OPNsense Pros →

"Particularly good in the DPI where we can inspect inbound and outbound traffic.""I think Sangfor NGAF is more valuable than Cisco products because of its simplicity and ease of management. If I compare it with Palo Alto and Cisco, both are quite complex products. And if I compare it with FortiGate firewalls from Fortinet, I have also used all these products. Fortinet and Sangfor NGAF are similar products because the applications behind the application and policy layers are almost identical.""It's a very simple to use product.""While the features are not dissimilar to other brands, configuration is much more simple, which works out great for Indonesian people.""The most valuable feature of Sangfor NGAF is its integration.""Sangfor NGAF works accordingly with our customers. The solution has good performance, easy to use, and integrates well with the endpoints.""The absolute best part of Sangfor NGAF is their support. It's a 24/7 support channel, and the last time I requested their assistance I got a reply within three minutes. They helped solve the problem immediately.""The stability of Sangfor NGAF is good."

More Sangfor NGAF Pros →

Cons
"The monitor and the visibility, in this proxy, is very weak.""Its customer service could be better.""The cloud features and integration could be improved.""Fortinet FortiGate is not very easy to use. The navigation could be improved to make it easier to use.""The room for improvement is about the global delivery time period. Usually I need to wait for almost one month to deliver it overseas. So if you can shorten the deliver time it'd be great.""One of the features that I would like to have is to do with endpoint production, it should be integrated. For example, the firewall gets notified of any kind of forensic event that needs to be done, such as if there is a ransomware attack and how it originated, all those records have to be available from the firewall, which is not.""There aren't really any negative aspects to discuss.""It can be a little bit more user-friendly in terms of policy definition and implementation. It seems a little bit complicated, and it could be simplified."

More Fortinet FortiGate Cons →

"There are a few weaknesses. For example, there is a lack of some features that I have in certain commercial products.""There should be more technical documentation.""The IPS solution could be more reliable.""Given that OPNsense plays a pivotal role as a firewall, safeguarding against various threats, having a reliable backup ensures uninterrupted protection even if unforeseen events impact the primary virtual machine.""On the customer-side, because I'm a small business, I need a cheaper or free solution option.""Its interface should be a little bit better.""While they do have paid options that actually gives better features, for most of the clients, if they tend to take a paid option will instead opt for Fortinet.""The ability to set the VPN IP address would be a welcome addition."

More OPNsense Cons →

"Sangfor NGAF could improve the policies and default criteria. They could be much better.""The support for YouTube or the Internet is not enough.""The product must provide more IPS features.""The support offered by the product has certain shortcomings where improvements are required. The knowledge levels and response time of the support team need improvement.""It does not offer any recommendations on how to mitigate or control attacks.""The solution has too many bugs and these slow down the implementation.""There is room for improvement in dependency on certain infrastructure, like the DNS dependency on the current DNS server that the company has. It should be standalone. It should not depend on any other DNS server.""The reporting and log management could be improved."

More Sangfor NGAF Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "We are not paying any licensing fees. OPNsense is completely free for us."
  • "It costs about $1000."
  • "There are no licensing costs for OPNsence."
  • "OPNsense is open source software so at this time it is free for us to use."
  • "OPNsense is a well known open-source tool."
  • "It is not an expensive product. Basically, I deployed it because it was the fastest solution to satisfy our needs in open source."
  • "OPNsense is an open-source solution and it is free to use."
  • "The solution is not expensive."

    • More OPNsense Pricing and Cost Advice →

  • "It costs about 8 to 10 thousand dollars per year for 500 users, standard licensing fees included."
  • "Sangfor is cheaper than competing vendors."
  • "The price is unmatcheable."
  • "When it comes to the price of firewall solutions, Sangfor NGAF takes the cake."
  • "Sangfor NGAF price is reasonable and there is an annual license. However, the maintenance cost can be a bit high."
  • "For four to five physical appliances for a licensed firewall, it costs approximately $4,000."
  • "The price could be more competitive."
  • "The license of Sangfor NGAF can be purchased at different interval lengths, such as annually or three years. They offer a range of packages to choose from, such as combo or hybrid packages. We are using the complete solution package which includes IM, NGF and SSL VPN, and WAF."

    • More Sangfor NGAF Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    768,740 professionals have used our research since 2012.
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    What is the difference between PfSense and OPNsense?
    Top Answer:Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and… more »
    What do you like most about OPNsense?
    Top Answer:It is a very good solution. I like the dashboard. I can see what is going on and manage it as I like it.
    Read all 31 answers   →
    What is your experience regarding pricing and costs for OPNsense?
    Top Answer:It is free.
    Read all 27 answers   →
    What do you like most about Sangfor NGAF?
    Top Answer:So far, the performance and reliability of the product have supported our company's critical network traffic.
    Read all 25 answers   →
    What is your experience regarding pricing and costs for Sangfor NGAF?
    Top Answer:I rate the product price as one on a scale of one to ten, where one is low price and ten is high price.
    Read all 23 answers   →
    What needs improvement with Sangfor NGAF?
    Top Answer:There are some difficulties with the deployment of the LDAP part in Sangfor NDAF, making it an area of concern where… more »
    Read all 24 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Sangfor NGAF Firewall Platform
    Learn More
    Fortinet
    OPNsense
    Video Not Available
    Sangfor
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    OPNsense is a user-friendly, fast-track, open-source FreeBSD-based firewall and routing platform. This software offers features that are generally available from costly commercial firewalls, with the added benefit of open and verifiable sources. The firewall provides users, developers, and organizations with an advantageous environment through transparency. The development of this project is driven by a strong focus on security and code quality.

    The solution offers a variety of components, such as:

    • Weekly security updates. These updates provide the user with the ability to reach new emerging threats in a timely manner through small increments.

    • Two major releases every year. These yearly releases are on a fixed release cycle and provide organizations with the ability to plan ahead of an upcoming upgrade.

    • A roadmap of instructions. Each major release provides a guide and a set of clear goals.

    A team of professionals developed OPNsense. Other professional and experienced software architects, engineers, and developers are encouraged to join in the development of the solution to make it as successful as possible. OPNsense offers a variety of rich features with each release. Each upgrade is based on FreeBSD for continual, long-term support and utilizes a freshly advanced MVC framework based on Phalcon. OPNsense is committed to helping businesses, school networks, remote offices, hotels, and other markets in keeping their data protected.

    OPNsense Core Features

    OPNsense continually offers a free, complete, high-end security platform with new releases and features. With each release, OPNsense focuses on providing more unique and better security features in a timely manner. These features include:

    • Captive Portal
    • Built-in reporting and monitoring tools including RRD Graphs
    • Network Flow Monitoring
    • Traffic Shaper
    • Support for Plugins
    • Granular Control Over State Table
    • Dynamic DNS
    • Two-factor authentication throughout the system
    • Netflow Exporter
    • Encrypted Configuration Backup to Google Drive
    • Forward Caching Proxy (transparent) with Blacklist Support
    • Stateful inspection firewall
    • DNS Server & DNS Forwarder
    • High Availability & Hardware Failover (with configuration synchronization & synchronized state tables)
    • DHCP Server and Relay
    • Virtual Private Network (site to site & road warrior, IPsec, OpenVPN & legacy PPTP support)
    • Intrusion Detection and Prevention
    • 802.1Q VLAN support

    Reviews from Real Users

    OPNsense is a favorite security solution among reviewers for a number of reasons. Two of those reasons include the user-friendliness of the solution, which makes it easy to use, and its ability to easily scale.

    For many, a user-friendly solution is essential. FiorindoDi A., a system administration specialist at a tech vendor, says, "The graphic user interface is very good and it is user-friendly, which makes the product easy-to-use."

    Peerspot reviewers speak of the scalability of the solution. For example, an anonymous cloud and infrastructure manager at a venture capital and private equity firm reviewer notes, "OPNsense is easy to scale when running on the hardware."

    Sangfor Next Generation Firewall (also known as NGAF) is a converged security solution providing protection against advanced threat, malware, viruses, ransomware and web-based attacks using integrated security features like firewall, IPS, anti-virus, anti-malware, APT, URL filtering, Cloud Sandbox, and WAF. As the world's first AI-enabled and fully integrated Next Generation Firewall & Web Application Firewall (WAF), NGAF offering the security visibility, real-time detection and response, simplified operation and maintenance and high-performance application layer security needed to operate an enterprise network in total security. Tested and proven to provide cutting-edge network security by ICSA Labs and endorsed by Gartner Inc., NGAF harnesses the power of Sangfor’s Neural-X threat intelligence and analytics platform and Engine Zero’s innovative malware detection to provide next-generation protection for today’s enterprise.

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    1. Deciso B.V. 2. iXsystems, Inc.  3. EuroBSDCon  4. Netgate  5. Claranet  6. Voleatech  7. Open Systems AG  8. Securebit AG  9. Proxmox Server Solutions GmbH  10. AVM Computersysteme Vertriebs GmbH  Additional customers include: T-Systems International GmbH, Deutsche Telekom AG, Vodafone GmbH, 1&1 IONOS SE, OVHcloud, Hetzner Online GmbH, Strato AG, PlusServer GmbH, Host Europe GmbH, United Internet AG, 1&1 Versatel Deutschland GmbH, QSC AG, Bechtle AG, Cancom SE, Computacenter AG & Co. oHG, T-Systems Multimedia Solutions GmbH, Atos SE, Capgemini SE, Accenture plc, IBM Corporation, Hewlett Packard Enterprise Company, Cisco Systems, Inc.
    The Ministry of Science, Technology, and Innovation (Indonesia), Lawson, Inc. (Philippines), Universiti Sultan Zainal Abidin (Indonesia), TEK Automotive (Italy), etc.
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company6%
    REVIEWERS
    Comms Service Provider24%
    Financial Services Firm18%
    Logistics Company12%
    Renewables & Environment Company6%
    VISITORS READING REVIEWS
    Comms Service Provider16%
    Computer Software Company14%
    Government8%
    Educational Organization6%
    REVIEWERS
    Manufacturing Company29%
    University19%
    Healthcare Company14%
    Computer Software Company10%
    VISITORS READING REVIEWS
    Computer Software Company13%
    Manufacturing Company9%
    Comms Service Provider9%
    Financial Services Firm7%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business71%
    Midsize Enterprise12%
    Large Enterprise18%
    VISITORS READING REVIEWS
    Small Business33%
    Midsize Enterprise18%
    Large Enterprise49%
    REVIEWERS
    Small Business47%
    Midsize Enterprise28%
    Large Enterprise25%
    VISITORS READING REVIEWS
    Small Business29%
    Midsize Enterprise18%
    Large Enterprise53%
    Buyer's Guide
    OPNsense vs. Sangfor NGAF
    March 2024
    Free Report: OPNsense vs. Sangfor NGAF
    Find out what your peers are saying about OPNsense vs. Sangfor NGAF and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    768,740 professionals have used our research since 2012.

    OPNsense is ranked 3rd in Firewalls with 36 reviews while Sangfor NGAF is ranked 21st in Firewalls with 31 reviews. OPNsense is rated 8.4, while Sangfor NGAF is rated 8.0. The top reviewer of OPNsense writes "Robust network security and management offering a user-friendly interface, open-source flexibility, and cost-effectiveness, with challenges regarding initial setup and the absence of official support". On the other hand, the top reviewer of Sangfor NGAF writes "Affordable, easy to configure firewall with fast, responsive support". OPNsense is most compared with Netgate pfSense, Sophos XG, Untangle NG Firewall, Sophos UTM and IPFire, whereas Sangfor NGAF is most compared with Sophos XG, Palo Alto Networks NG Firewalls, Netgate pfSense, Check Point NGFW and WatchGuard Firebox. See our OPNsense vs. Sangfor NGAF report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.